RE: Security questions

[William Kaufman]

> What is the default password for the admin context? 

It's in tomcat/conf/tomcat-users.xml .

> where can I find documentation on implementing security with tomcat? 

Start with the servlet specification at
http://java.sun.com/products/servlet/ .  You could also look at JDBCRealm
(sources and docs available at http://jakarta.apache.org/) as a sample
implementation.

                                        -- Bill K.